This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Start a conversation

Discover LIVEcommunity Through Our New Animated Explainer Video!

We’re thrilled to unveil a brand-new animated video that highlights everything LIVEcommunity has to offer! This short and engaging video gives you a quick tour of the many resources available in our vibrant community — from interactive discussions and customer journey guides to the Cyber Elite program and Member Spotlight features. Whether ...

kiwi_0-1745308399217.png
kiwi by Community Team Member
  • 4116 Views
  • 0 replies
  • 0 Likes

EDL server certificate authentication failed. A local copy of associated external dynamic list will be used

I'm receiving this error from our firewall every 2 minutes, I can't figure out what the cause is. The reason says "self signed certificate in certificate chain" but I don't know what self signed cert it is talking about. This has been working for years now, the cert selected on the firewall is the GoDaddy root from https://certs.godaddy.com/repo...

Unable to HTTPS or SSH into new out of the box PA440

Had a new PA440 delivered to a remote location. I am able to ping the device (192.168.1.1) but am not able to HTTPS or SSH into it. Assuming that my IT person at the remote location has the device plugged into the MGT port and in the switch, which since I ping it I am assuming that is the case I am not sure why I can not get in at least with SSH...

dahoove by L1 Bithead
  • 8443 Views
  • 9 replies
  • 0 Likes

Error generating a new certificate

Hi, we are trying to generate a new elf-signed certificate in Panorama and we receive this error: Failed to insert certificate into configuration. Failed to find beginning of certificate. Make sure certificate starts with BEGIN CERTIFICATE tag. This is the certificate and the error: Why are we receiving this error?

cert1.JPG
cert2.JPG
BigPalo by L4 Transporter
  • 19320 Views
  • 16 replies
  • 0 Likes

Firewall Traffic flagged as unknown-tcp using port 31200

Hello, Seeing some traffic for Unknown-tcp using port 31200. I'm in the process of refining our firewall rules to be more granular and for this current rule has an any app on any service applied with no restrictions. Trying to see what I can create for this particular traffic in a separate rule. Is there a way to determine what this is exactly? ...

Join Us For a Fuel Workshop on GlobalProtect Troubleshooting Techniques (APAC Region Sept 17-18)

Fuel Workshop on GlobalProtect Troubleshooting Techniques Welcome to the next in our series of Fuel Workshops where will be covering troubleshooting techniques for GlobalProtect. Over the next two days, we will be learning a number of items related to supporting as well as best practices around how to build a proper GlobalProtect environment...

emgarcia by Community Team Member
  • 2684 Views
  • 3 replies
  • 4 Likes

random-drop vs drop - zone protection

For TCP flood logs should only show "random-drop" with RED configured."drop" for TCP flood is this coming from options set under "TCP Drop" options under Packet Based Attack Protection.

image.png
raji_toor by L4 Transporter
  • 11077 Views
  • 11 replies
  • 0 Likes

Resolved! Palo Alto PAN-OS Adv threat and AV Update scheduling

Hi, Newish to Palo Alto and learning about the automatic download and updates and watching the training videos. If I set the PA to check every 24hours and come back a week later and can see a list of Updates. Do I need to download all of updates, or by clicking the latest one to download, is the firewall clever enough to know it needs to downloa...

M.Gannon by L1 Bithead
  • 1144 Views
  • 1 replies
  • 0 Likes

Resolved! translate.googleapis.com is categorized as private IP addresses

Hello, I'm wondering if anyone else has encountered this.When a user wants to use the translation function in Chrome, it doesn't work. I looked at the logs and saw that the URLs are categorized as private IP addresses, which is blocked for us. The question is why the URLs are classified as private. A test on "Test A Site" resulted in the correct...

SDwel_0-1752561333337.png
SDwel_1-1752561362349.png
S.Dwel by L1 Bithead
  • 2543 Views
  • 4 replies
  • 0 Likes

Download executable GP from mobile phones

Hi, I wanted to know if it's possible in Palo Alto, when you connect to the portal via https://vpn.xxx.com and authenticate from mobile phone, that instead of displaying the laptop executables, you get a redirect to the app market or the option to download the GP APK. Something like the FW PA knowing the agent from you are connecting in order to...

BigPalo by L4 Transporter
  • 876 Views
  • 2 replies
  • 0 Likes

VPN tunnel monitoring/alerting

When NOT using tunnel monitoring and keying off events ids for "tunnel-status-up/tunnel-status-down", what is the best logging to alert on for tunnels going up or down?Is it only alertable/trackable by ( eventid eq 'ikev2-nego-ike-dpd-dn' )Or is there a better way to alert when NOT using tunnel monitoring on when a tunnel is hard down? Assumi...

Sec101 by L4 Transporter
  • 611 Views
  • 1 replies
  • 0 Likes

decryption error with Anydesk

Dear Community! I´m trying to use Anydesk and it only works with decryption policy disabled, somehow the predefined exclusion for Anydesk is not working. While checking the decryption logs I can see the following error: "tlsv1 alert insufficient security. Received fatal alert InsufficientSecurity from server" Does anyone have an idea the rea...

Carracido by L4 Transporter
  • 1412 Views
  • 1 replies
  • 1 Likes

Resolved! Source Address - Show ipv4

I just upgraded from a PA 500 to a PA 820 and something is throwing me for a loop. In all of my reports and in the monitoring section under App Scope the firewall is reporting what appears to be ipv6 addresses, they are in the format of: "::678b:540:ffff:0". I'd prefer to see the ipv4 address as it is much simpler to hunt down the offending us...

Screen Shot 2021-07-08 at 8.26.00 AM.png
  • 24334 Posts
  • 124 Subscriptions
Top Solution Authors
View All
Top Liked Authors
View All
Labels
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks